Subscription to the full report on a daily basis can be obtained:
Send an eMail to dhsdailyadmin@mail.dhs.osis.gov with the subject "DHS Daily Open Source Infrastructure Report" and the following line in the body...subscribe.
To obtain a complete copy of the current report proceed to the DHS link below.
To obtain reports more than 10 business days old, send an eMail to DHS_Reports@e-computer-security.com. Be specific as to the reports you wish to receive.

19.
October 21, Los Angeles Times –
(California) Laptop theft compromise 729,000 hospital patient files. San
Gabriel Valley-based AHMC notified 729,000 patients that their personal and
health information may have been compromised after two password-protected
laptops were stolen from an office on a medical campus October 12. Authorities
do not believe the information was accessed or used, and are continuing to
investigate the incident. Source: http://www.latimes.com/local/la-me-hospital-theft-20131022,0,1936078.story#axzz2iSURjiZb

• A student at a middle school in Sparks,
Nevada, shot and killed a teacher and wounded two other students before
shooting and killing himself. –Associated Press

21.
October 22, Associated Press –
(Nevada) Teacher called hero in fatal Nevada school shooting. A student
killed himself after he shot and killed a teacher and wounded two other
students from Sparks Middle School in Nevada October 21 when he entered school
grounds and began firing. The middle school and adjacent elementary school was
closed for the remainder of the week while authorities investigate. Source: http://news.msn.com/crime-justice/teacher-called-hero-in-fatal-nevada-school-shooting

• Eight officers and 13 enlisted members of an
Arizona Air National Guard were indicted on charges they falsified military
records to defraud the U.S. government for additional pay – Reuters

22.
October 21, Reuters – (Arizona) National
Guard members indicted on fraud charges. Eight officers and 13 enlisted
members of an Arizona Air National Guard unit in Tucson were indicted October
21 on charges they falsified military records to defraud the U.S. government
out of hundreds of thousands of dollars of additional pay meant for troops on
deployment. The individuals allegedly used fake home addresses to collect extra
pay from November 2007 through September 2010, earning over $100,000. Source: http://news.msn.com/crime-justice/national-guard-members-indicted-on-fraud-charges

• Google canceled several Developer accounts
and removed several Android apps from its Google Play store found to be using
an unnamed mobile app library dubbed Vulna. – The RegisterSee item 25 below in the Information Technology Sector

Details

Banking and Finance Sector

8. October
22, U.S. Securities and Exchange Commission – (International) SEC
charges Diebold with FCPA violations. The U.S. Securities and Exchange
Commission charged ATM and bank security systems manufacturer Diebold with
violating the Foreign Corrupt Practices Act by allegedly bribing
government-owned bank officials in China and Indonesia and then recording the
bribes as legitimate expenses, in addition to allegedly falsifying records to
hide $1.2 million in bribes to employees of private banks in Russia. Diebold
agreed to pay more than $48 million to resolve the charges and to resolve U.S.
Department of Justice criminal charges related to the violations. Source: http://www.sec.gov/News/PressRelease/Detail/PressRelease/1370539977273

25. October
22, The Register – (International) Google pulls all Android apps linked to
adware badness THAT MUST NOT BE NAMED. Google removed several Android apps
from its Google Play store found to be using an unnamed mobile app library
dubbed Vulna after it was reported that the library poses a major security
risk. Google also canceled several Developer accounts associated with apps
found to be exploiting the app library vulnerability. Source: http://www.theregister.co.uk/2013/10/22/vulna_mobile_ad_threat_followup/

26. October
22, Softpedia – (International) Cutwail cybercriminals replace BlackHole with
Magnitude exploit kit. Researchers at Dell’s SecureWorks reported that a
cybercriminal group that uses the Cutwail spam botnet to distribute malware has
switched from using the BlackHole exploit kit to using Magnitude (Popads)
following the arrest of BlackHole’s alleged creator. Trend Micro also reported
that all major campaigns utilizing BlackHole have ended following the arrest.
Source: http://news.softpedia.com/news/Cutwail-Cybercriminals-Replace-BlackHole-with-Magnitude-Exploit-Kit-393271.shtml

27. October
22, The Register – (International) D-Link hole-prober finds ‘backdoor’ in
Chinese wireless routers. Security researchers reported finding a backdoor
in Tenda wireless routers that could be used by attackers to take over the
router and execute commands via a UDP packet with a special string. Source: http://www.theregister.co.uk/2013/10/22/tenda_router_backdoor/

29. October
21, The Register – (International) Now swallow: Microsoft hands out cure for
Surface RT tabs killed by Win 8.1. Microsoft released a recover image for
Surface RT tablets that were affected by a faulty Windows 8.1 upgrade that
caused some tablets to boot to an error message. Source: http://www.theregister.co.uk/2013/10/21/surface_rt_recovery_image/

Links

About Me

U.S. Army Retired Chief Warrant Officer with more than 40 years in information technology and 35 years in information security. Became a Certified Information Systems Security Professional in 1995 and have taught computer security in Asia, Canada and the United States. Wrote a computer security column for 5 years in the 1980s titled "for the Sake Of Security", penname R. E. (Bob) Johnston, which was published in Computer Decisions.
Motto: "When entrusted to process, you are obligated to safeguard"